The Error Log Viewer WordPress plugin up to and including 1.1.1 does not validate the path of the log file to clear, allowing high privilege users to clear arbitrary files on the web server, including those outside of the blog folder
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bestwebsoft error log viewer |